We performed a comparison between HCL AppScan and PortSwigger Burp Suite Professional based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The product has valuable features for static and dynamic testing."
"It provides a better integration for our ecosystem."
"It's generally a very user-friendly tool. Anyone can easily learn how to scan"
"There's extensive functionality with custom rules and a custom knowledge base."
"The most valuable feature of HCL AppScan is scanning QR codes."
"AppScan is stable."
"It is a stable solution...It is a scalable solution...The initial setup or installation of HCL AppScan is easy."
"You can easily find particular features and functions through the UI."
"The extension that it provides with the community version for the skills mapping is excellent."
"PortSwigger Burp Suite does not hamper the node of the server, and it does not shut down the server if it is running."
"The most valuable feature of PortSwigger Burp Suite Professional is the dashboard. It is very informative and you can receive all the information you need in one place. It's clear, well-defined, and organized. Anybody without any cybersecurity can use it."
"The active scanner, which does an automated search of any web vulnerabilities."
"The most valuable feature of PortSwigger Burp Suite Professional is the advanced features, user-friendly interface, and integration with other tools."
"It's good testing software."
"The solution has a pretty simple setup."
"I am impressed with the tool's detailed analysis for penetration testing. AppScan can give only visibility, but it can't do the PT part. But the PortSwigger Burp Application can do both, and it gives much more visibility on the PT rating."
"The pricing has room for improvement."
"The solution needs to improve in some areas. The tool needs to add more languages. It also needs to improve its speed."
"In future releases, I would like to see more aggressive reports. I would also like to see less false positives."
"There is room for improvement in the pricing model."
"The dashboard, for AppScan or the Fortified fast tool, which we use needs to be improved."
"It's a little bit basic when you talk about the Web Services. If AppScan improved its maturity on Web Services testing, that would be good."
"I would love to see more containers. Many of the tools are great, they require an amount of configuration, setup and infrastructure. If most the applications were in a container, I think everything would be a little bit faster, because all our clients are now using containers."
"We would like to see a check in the specific vulnerabilities in mobile applications or rooted devices, such as jailbreaking devices."
"There is not much automation in the tool."
"Scanning APIs using PortSwigger Burp Suite Professional takes a lot of time."
"We'd like to have more integration potential across all versions of the product."
"Sometimes the solution can run a little slow."
"The pricing of the solution is quite high."
"The reporting needs to be improved; it is very bad."
"I need the solution to be more user-friendly. The solution needs to be user-friendly."
"The solution’s pricing could be improved."
More PortSwigger Burp Suite Professional Pricing and Cost Advice →
HCL AppScan is ranked 15th in Application Security Tools with 41 reviews while PortSwigger Burp Suite Professional is ranked 9th in Application Security Tools with 57 reviews. HCL AppScan is rated 7.8, while PortSwigger Burp Suite Professional is rated 8.6. The top reviewer of HCL AppScan writes " A stable and scalable product useful for application security scanning". On the other hand, the top reviewer of PortSwigger Burp Suite Professional writes "The solution is versatile and easy to deploy, but it needs to give more detailed security reports". HCL AppScan is most compared with SonarQube, Veracode, Acunetix, OWASP Zap and Checkmarx One, whereas PortSwigger Burp Suite Professional is most compared with OWASP Zap, Fortify WebInspect, Acunetix, Qualys Web Application Scanning and SonarQube. See our HCL AppScan vs. PortSwigger Burp Suite Professional report.
See our list of best Application Security Tools vendors and best Static Application Security Testing (SAST) vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.